ioc[.]one - OSINT Cyber Threat Intelligence Database

东北亚活跃分子APT组织Kimsuky之事件篇 – 绿盟科技技术博客

Tags

Show in Graph

Common Information

Type	Value
UUID	c265506e-da8d-4e81-b0ea-5fc539b3990d
Fingerprint	fb180983eed13f86
Analysis status	DONE
Considered CTI value	0
Text language
Published	Oct. 21, 2021, 11:09 a.m.
Added to db	Jan. 30, 2023, 4:35 p.m.
Last updated	Nov. 17, 2024, 5:56 p.m.
Headline	东北亚活跃分子APT组织Kimsuky之事件篇
Title	东北亚活跃分子APT组织Kimsuky之事件篇 – 绿盟科技技术博客
Detected Hints/Tags/Attributes	14/0/28

Source URLs

	Redirection	Url
Details	Source	http://blog.nsfocus.net/apt-kimsuky/

URL Provider

Details	Provider	Source level domain
Details	nsfocus.net	blog.nsfocus.net

Attributes

Details	Type	#Events	Value
Details	Domain	1	www.biospace.com
Details	Domain	403	securelist.com
Details	Domain	154	us-cert.cisa.gov
Details	Domain	1	world.kbs.co.kr
Details	Domain	61	www.netscout.com
Details	Domain	37	blog.alyac.co.kr
Details	Domain	9	www.boannews.com
Details	File	1	后缀形式如.doc
Details	File	95	pdf.exe
Details	File	15	hwp.exe
Details	File	1	news_view.htm
Details	File	13	view.asp
Details	Url	1	https://www.biospace.com/article/astrazeneca-most-recent-victim-of-hackers-posing-as-recruiters
Details	Url	3	https://securelist.com/the-kimsuky-operation-a-north-korean-apt/57915
Details	Url	2	https://us-cert.cisa.gov/ncas/alerts/aa20-301a
Details	Url	1	http://world.kbs.co.kr/service/news_view.htm?lang=c&seq_code=44374
Details	Url	3	https://www.netscout.com/blog/asert/stolen-pencil-campaign-targets-academia
Details	Url	2	https://blog.alyac.co.kr/2140
Details	Url	1	https://blog.alyac.co.kr/3120
Details	Url	1	https://blog.alyac.co.kr/3767
Details	Url	1	https://blog.alyac.co.kr/3525
Details	Url	1	https://www.boannews.com/media/view.asp?idx=96793
Details	Url	1	https://blog.alyac.co.kr/2336
Details	Url	1	https://blog.alyac.co.kr/2338
Details	Url	3	https://blog.alyac.co.kr/2243
Details	Url	1	https://blog.alyac.co.kr/3033
Details	Url	2	https://blog.alyac.co.kr/3458
Details	Url	1	https://blog.alyac.co.kr/2717